PT-2020-14508 · Samsung · Samsung Mobile Devices

Published

2020-07-07

Updated

2020-07-10

CVE-2020-15580

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Samsung mobile devices versions O(8.x) through Q(10.0)

Description An issue allows attackers to bypass Factory Reset Protection (FRP) by enrolling a new lock password.

Recommendations For Samsung mobile devices versions O(8.x) through Q(10.0), consider disabling the lock password enrollment feature until a patch is available. Restrict access to the device to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2020-15580

Affected Products

Samsung Mobile Devices

PT-2020-14508 · Samsung · Samsung Mobile Devices

CVE-2020-15580

Related Identifiers

Affected Products

References · 4